I was worried when Rapid7 "acquired" metasploit. I thought they would immediately stop work on the free version and only release updates for the commercial versions. But they didn't. They kept the updates rolling and left it open-source.

So it will be interesting to see what they do with John. But I am (perhaps naively) hopeful.

nice, i must say kudo's to rapid7 to make such projects a success for both the commercial and professional groups. i personally try to avoid brute forcing, but sometimes its the only way to get closer to your goal...great to see such tools being combined.

CISSP, CEH, ECSA, OSCP, OSWP, eCPPT, eWAPT

earning my stripes appears to be a road i must travel alone...with a little help of EH.net